00:00

QUESTION 21

- (Exam Topic 4)
When testing the accuracy of transaction data, which of the following situations BEST justifies the use of a smaller sample size?

Correct Answer: B
The best situation to justify the use of a smaller sample size when testing the accuracy of transaction data is when it is expected that the population is error-free. This is because if the data is assumed to be error-free, then a smaller sample size can be used to confirm the accuracy of the data. It is important to note, however, that this does not replace the need for proper segregation of duties and other controls to ensure accuracy and integrity of the data.

QUESTION 22

- (Exam Topic 4)
Controls related to authorized modifications to production programs are BEST tested by:

Correct Answer: A

QUESTION 23

- (Exam Topic 4)
When is it MOST important for an IS auditor to apply the concept of materiality in an audit?

Correct Answer: C

QUESTION 24

- (Exam Topic 4)
An organization is concerned with meeting new regulations for protecting data confidentiality and asks an IS auditor to evaluate their procedures for transporting data. Which of the
following would BEST support the organization's objectives?

Correct Answer: C
The best option to support the organization's objectives of protecting data confidentiality when transporting data is encryption. Encryption is a process of encoding data so that it cannot be accessed or read by unauthorized parties. Encryption can be used to secure data in transit, ensuring that confidential data remains confidential and protected from unauthorized access. According to the ISACA CISA Study Manual, "encryption is the most effective way to achieve data security."

QUESTION 25

- (Exam Topic 4)
Transaction records from a business database were inadvertently deleted, and system operators decided to restore from a snapshot copy. Which of the following provides assurance that the BEST transactions were recovered successfully?

Correct Answer: B
Recounting the transaction records to ensure that no records are missing is the best method to provide assurance that the best transactions were recovered successfully. This is because it ensures that all of the records that were present in the database before the snapshot was taken have been restored successfully. Other methods such as reviewing transaction recovery logs, rerunning the process on a backup machine, or comparing transaction values against external statements are not as reliable as recounting the records, as they do not guarantee that all of the records have been restored correctly.